Filter and search through 196,713 vulnerabilities
| CVE ID | Description | CVSS | Priority | Trend | Exploit | Patch |
|---|---|---|---|---|---|---|
| CVE-2025-48058 | ### Impact _What kind of vulnerability is it? Who is impacted?_ This is an advisory for a **potential polynomial Regular Expression Denial of Service... | 0.0 | 0 | Neutral | No |
| Yes |
| CVE-2025-48054 | ### Impact This is a prototype pollution vulnerability. It impacts users of the `set` function within the Radashi library. If an attacker can control... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-4805 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS.... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48047 | An authenticated user can perform command injection via unsanitized input to the NetFax Server’s ping functionality via the /test.php endpoint. | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-48046 | An authenticated user can disclose the cleartext password of a configured SMTP server via an HTTP GET request to the /config.php endpoint. | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-48045 | An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default administrator user credentials. | 0.0 | 0 | Neutral | Yes | No |
| CVE-2025-48044 | ### Summary Bypass policies incorrectly authorize requests when their condition evaluates to true but their authorization checks fail and no other pol... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48043 | ### Summary When using **filter** authorization, two edge cases could cause the policy compiler/authorizer to generate a permissive filter: 1. **Byp... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48042 | ### Summary Certain bulk action calls with a `before_transaction` hook and no `after_transaction` hook, will call the `before_transaction` hook before... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48041 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vu... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48040 | Uncontrolled Resource Consumption vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Flooding. This vulnerability is asso... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-4804 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WatchGuard Fireware OS allows Stored XSS ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-48039 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exp... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-48038 | Allocation of Resources Without Limits or Throttling vulnerability in Erlang OTP ssh (ssh_sftp modules) allows Excessive Allocation, Resource Leak Exp... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-4801 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was issued in error. Notes: All references and descriptions in ... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-47934 | ### Impact A maliciously modified message can be passed to either `openpgp.verify` or `openpgp.decrypt`, causing these functions to return a valid sig... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-47929 | DumbDrop, a file upload application that provides an interface for dragging and dropping files, has a DOM cross-site scripting vulnerability in the up... | 0.0 | 0 | Neutral | No | No |
| CVE-2025-47911 | The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service ... | 0.0 | 0 | Neutral | No | Yes |
| CVE-2025-47899 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |
| CVE-2025-47898 | Rejected reason: Not used | 0.0 | 0 | Neutral | No | No |